Report - bowfile.com/a1mf

Report Overview

Submitted URL
bowfile.com/a1mf
IP
172.67.205.230
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-27 22:47:59
Access
public
Website Title
Sonic-Superstars-Repack-Games.com.rar - BowFile
Final URL
bowfile.com/a1mf
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-27	941 B	18 kB	151.101.129.229
thubanoa.com	unknown	2023-11-17	2023-11-17	2024-04-24	5.3 kB	220 kB	139.45.197.242
my.rtmark.net	9054	2014-10-29	2015-02-04	2024-04-27	415 B	740 B	139.45.195.8
t.dtscout.com	11951	2013-11-01	2017-01-30	2024-04-25	943 B	33 kB	141.101.120.10
interbuzznews.com	237501	2018-07-24	2018-08-10	2024-04-18	5.7 kB	77 kB	139.45.197.154
lh3.googleusercontent.com	66	2008-11-17	2012-05-22	2024-04-26	537 B	3.5 kB	142.250.74.97
bowfile.com	168411	2021-05-16	2021-05-16	2024-04-14	14 kB	1.6 MB	104.21.37.79
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-26	418 B	93 kB	142.250.74.168
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-27	5.4 kB	430 kB	216.58.207.227
waust.at	38137	unknown	2016-01-28	2024-04-26	383 B	42 kB	104.26.4.7
fundingchoicesmessages.google.com	2397	1997-09-15	2019-01-16	2024-04-27	1.8 kB	571 kB	216.58.211.14
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-27	1.8 kB	152 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-27	medium	thubanoa.com	Sinkholed
2024-04-27	medium	thubanoa.com	Sinkholed
2024-04-27	medium	thubanoa.com	Sinkholed
2024-04-27	medium	thubanoa.com	Sinkholed
2024-04-27	medium	thubanoa.com	Sinkholed
2024-04-27	medium	thubanoa.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (30)

	URL	Size	First Seen	Last Seen
	cdn.jsdelivr.net/gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.umd.js	23 kB	2024-02-26	2024-05-07
Pretty URL cdn.jsdelivr.net/gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.umd.js IP 151.101.129.229 ASN #54113 FASTLY Introduced by importedModule Embedded in HTML false Observations First Seen2024-02-26 12:54:46 Last Seen2024-05-07 16:41:53 Times Seen16 Hash cbdca47e478059353766a77f91ebd1ec e75a6d9fe80bbfbfb21f09fdb65e2229b9118698 222b5e0b89eebb3777ce3650e3b4ac1a5633ff19d05ef37d2a761c5b41214ec9 Loading...

	unknown	357 B	2024-04-28	2024-05-04
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2024-04-28 00:48:00 Last Seen2024-05-04 19:43:44 Times Seen4 Hash c13e83a20f52d8acfc118c05dd06c10b a4fde41dddf2a68e370c9aa42a879ae3251fd2d5 1bcac56a312d28ce60c41a9a493764094e3e80bdbab4c5c45509818f838f4ca5 Loading...

	bowfile.com/themes/spirit/assets/frontend/js/datepicker.js	21 kB	2023-03-07	2024-05-10
Pretty URL bowfile.com/themes/spirit/assets/frontend/js/datepicker.js IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:12 Last Seen2024-05-10 21:19:49 Times Seen253 Hash 614058ddc049738b0905aed77acb29d0 694985606c2a3b482156035b1a1bb79aacf757e6 b6919dd92f8162e9d8b6642769217b9472c5bf423cdf82df50301a8af50ee53a Loading...

	www.googletagmanager.com/gtag/js?id=G-G45GX6EFX2	267 kB	2024-04-28	2024-04-28
Pretty URL www.googletagmanager.com/gtag/js?id=G-G45GX6EFX2 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 00:48:01 Last Seen2024-04-28 00:48:01 Times Seen2 Hash 90306736b4393e6ebac3aafe9bd30e2f 7b63dcdc956889ca91940fa296076015529988b3 0c745fad27c082cc067bb74f9c99e7e9ca5fd674f9a539052ac64336d7e530a9 Loading...

	bowfile.com/a1mf	88 B	2023-03-07	2024-05-10
Pretty URL bowfile.com/a1mf IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:29:12 Last Seen2024-05-10 21:19:48 Times Seen124 Hash e45d6b2855e5f98b74fb823618e45b75 d8010e7b1fe268e7c5aa821a25f784609d51b407 08688c8ce526ce14578665924c88d53d01f370b5746970bf1535eb338133a5f1 Loading...

	bowfile.com/themes/spirit/assets/frontend/js/jquery.steps.min.js	14 kB	2023-03-07	2024-05-11
Pretty URL bowfile.com/themes/spirit/assets/frontend/js/jquery.steps.min.js IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:01 Last Seen2024-05-11 17:43:33 Times Seen644 Hash 0eef6fe46d14f860d5666d2c7b13a564 7ab5f7deaca2f71efbc3bf9f5ba27b89d4697dbe 95a14a4473ff130eb29f3cc02e135978505655e3c931b6c3726dedd4f558f843 Loading...

	bowfile.com/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js	87 kB	2023-03-07	2024-05-11
Pretty URL bowfile.com/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:28 Last Seen2024-05-11 17:43:33 Times Seen7621 Hash 5b5a269bd363e0886c17d855c2aab241 042dd055cd289215835a58507c9531f808e1648a 1cf30e59d21d4ae560af7143f5913efcc8222bcaa4fcc7508eb802b5faa9e94e Loading...

	bowfile.com/a1mf	429 B	2023-03-07	2024-05-11
Pretty URL bowfile.com/a1mf IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:02:48 Last Seen2024-05-11 12:08:13 Times Seen1490 Hash eafaa0be830db11da3770638100b686f db325dc427493ed0c2988ef229573b7093425466 96adbda6f380d09bfd780e4143e165a48037b43421d3964980a4343aedc644ab Loading...

	bowfile.com/themes/spirit/assets/frontend/js/cookieconsent-config.js	2.7 kB	2024-03-26	2024-05-04
Pretty URL bowfile.com/themes/spirit/assets/frontend/js/cookieconsent-config.js IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-26 05:05:38 Last Seen2024-05-04 19:43:45 Times Seen6 Hash 460b9a20eecf5f23e7b07e731e51ad85 c0563ea1cb94710e47d59da474d2f0cc11a8221a 2761338d1bba925cfe06926588e3ee9dc9bcd0bc38f25c70270b2b1f7a1f66f0 Loading...

	bowfile.com/a1mf	2.0 kB	2024-04-28	2024-04-28
Pretty URL bowfile.com/a1mf IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-28 00:48:01 Last Seen2024-04-28 00:48:01 Times Seen1 Hash 51b8af30f5ea13f57801aecfb1529122 b796c7e75d3cdf3f06ab64822fb33873fcb13714 ca7029062f2c359d48e866878410fe8c3c5b1d13e1610ef97f109a5615843c65 Loading...

	bowfile.com/themes/spirit/assets/frontend/js/countdown.min.js	5.4 kB	2023-03-07	2024-05-11
Pretty URL bowfile.com/themes/spirit/assets/frontend/js/countdown.min.js IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:01 Last Seen2024-05-11 17:43:33 Times Seen1047 Hash 76a923d3d69255c45cd24bf9b100244f eb3c96f9901692f1a03500ea632963a16afdb985 8f195573d6fa06641814b476fea2b92579c983cac46d683f356238207692c9f5 Loading...

	bowfile.com/themes/spirit/assets/frontend/js/jquery.dataTables.min.js	70 kB	2023-03-07	2024-05-11
Pretty URL bowfile.com/themes/spirit/assets/frontend/js/jquery.dataTables.min.js IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:01 Last Seen2024-05-11 17:43:33 Times Seen626 Hash 6fda19caa29287e6f584f0557fdeb6d4 40f58160090cd1f022704ee1352b343adb9e73b9 8ef749c3869991924150dc932c48cd57bf69ac25a378bb2e14f8e1733c17406f Loading...

	t.dtscout.com/pv/?_a=v&_h=bowfile.com&_ss=4pt2bnlrza&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5b6r&_cb=_dtspv.c	51 B	2024-04-28	2024-04-28
Pretty URL t.dtscout.com/pv/?_a=v&_h=bowfile.com&_ss=4pt2bnlrza&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5b6r&_cb=_dtspv.c IP 141.101.120.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 00:48:01 Last Seen2024-04-28 00:48:01 Times Seen1 Hash e4e9779a3f4262c6479b141e85d4dc23 5c679f1f69065ba2c7d906ce58e4108886321c4b 021f37ecec2649fe1650ba32f97e829e4ff929282ecbf72bfb1d9d7810a57de5 Loading...

	thubanoa.com/27/7552beb94fc0bdff7bbb33cad3d1ab0a	413 kB	2024-04-11	2024-05-11
Pretty URL thubanoa.com/27/7552beb94fc0bdff7bbb33cad3d1ab0a IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 13:26:00 Last Seen2024-05-11 17:43:33 Times Seen235 Hash 297cc248309ba835cf13a1f82fd3f938 1e6f51ce257a0ee53e25280dd44092ed33339847 b2ba9d8b2216d22f8f31a594bc22ee21f60e2b539474a650be1e87dea87d5ed7 Loading...

	thubanoa.com/1?z=7209201	43 kB	2024-04-28	2024-04-28
Pretty URL thubanoa.com/1?z=7209201 IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 00:48:01 Last Seen2024-04-28 00:48:01 Times Seen1 Hash c3b92481a7d2ec93b4126cf64d1780d4 5f51b1e6100c179e1f4e3d342df1f1651cc02c68 9e588d84aef03a73d138385182b1baff39195cb9d08d253f2f936aa7e94e83bb Loading...

	bowfile.com/_/mss/boq-content-ads-contributor/_/js/k=boq-content-ads-contributor.ContributorServingResponseClientJs.en_US.uDctmmgJLBg.es5.O/am=gAE/d=1/rs=AJlcJMylM721_s8nCb1T1ExtABs-ICu4Cg/m=kernel_loader,loader_js_executable	186 kB	2024-04-28	2024-04-28
Pretty URL bowfile.com/_/mss/boq-content-ads-contributor/_/js/k=boq-content-ads-contributor.ContributorServingResponseClientJs.en_US.uDctmmgJLBg.es5.O/am=gAE/d=1/rs=AJlcJMylM721_s8nCb1T1ExtABs-ICu4Cg/m=kernel_loader,loader_js_executable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 00:48:01 Last Seen2024-04-28 00:48:02 Times Seen2 Hash 3c67fb227452c00769f536a5f2a768cf 5d4eb820fb99b316579d06ca6317a1c87ede20a0 23a475f4961219b6e5c29bb7ac633ea744fb58787c0f7522ca159937dcd4922a Loading...

	bowfile.com/a1mf	57 B	2023-03-07	2024-05-11
Pretty URL bowfile.com/a1mf IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:59 Last Seen2024-05-11 23:47:32 Times Seen11070 Hash 2a2781f9bb6302c2f96df0d1e96ef524 796bb90146495848c0c479533c367edadb94f1a9 1b60af0ce49d65e8b1006457c16883d60e53a0054bb157c57c3b03a82ee9964d Loading...

	bowfile.com/themes/spirit/assets/frontend/js/granim.min.js	11 kB	2023-03-07	2024-05-11
Pretty URL bowfile.com/themes/spirit/assets/frontend/js/granim.min.js IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:01 Last Seen2024-05-11 17:43:33 Times Seen626 Hash 714368d20c70f8c91b0a596e128dac07 563954ec3a896fc129d014f01836245829f6d01d e70b27194b8793b68cccee28a6d8a1e39aae2ce5d28d5e71ac204d7a3ac164e3 Loading...

	bowfile.com/themes/spirit/assets/frontend/js/smooth-scroll.min.js	6.0 kB	2023-03-07	2024-05-11
Pretty URL bowfile.com/themes/spirit/assets/frontend/js/smooth-scroll.min.js IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:01 Last Seen2024-05-11 17:43:33 Times Seen527 Hash c9e3a210d83398f301b3a7049c259676 8e227bb40fe120841829a7fef0ffeb091d179a91 aeda362b1d693480453b895cbcf8b92629f58240c42ba8c643f0d5d338baf805 Loading...

	bowfile.com/a1mf	1.0 kB	2024-04-28	2024-04-28
Pretty URL bowfile.com/a1mf IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-28 00:48:01 Last Seen2024-04-28 00:48:01 Times Seen1 Hash 77564a483d733a72b8bb59941ea1d526 66cc499918de5a42d06368b488e60ff367d7e145 9f4115f2f83478ec7880119f8f42fbd26dbbbaf0e39d7f705d56e6779a2e80ea Loading...

	t.dtscout.com/i/?l=https%3A%2F%2Fbowfile.com%2Fa1mf&j=	2.1 kB	2023-03-07	2024-05-11
Pretty URL t.dtscout.com/i/?l=https%3A%2F%2Fbowfile.com%2Fa1mf&j= IP 141.101.120.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-05-11 22:38:42 Times Seen4553 Hash 51bd741af3fcc4984d1a753eebfa1141 534664acf69cbbb5c9b97c96b63dd37bdc580da2 3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c Loading...

	bowfile.com/themes/spirit/assets/frontend/js/typed.min.js	3.9 kB	2023-03-07	2024-05-12
Pretty URL bowfile.com/themes/spirit/assets/frontend/js/typed.min.js IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:01 Last Seen2024-05-12 00:32:14 Times Seen6027 Hash 2f6185a8a32a50b2b3e04849f44359d4 0e5501588c5c0d1c9462f34b0d56c21abff5bfef 914df93a9770d8a0e132b6ce3e8f1cfba0e0fae8f3b9002a3f0eb47c3d0cc97b Loading...

	bowfile.com/a1mf	1.1 kB	2023-10-16	2024-05-04
Pretty URL bowfile.com/a1mf IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-16 21:14:37 Last Seen2024-05-04 19:43:45 Times Seen22 Hash 53e701ec493253580703994552edbb1a 9777d1fbe8dc3ec4a3ea8505a7384e689c745369 c2b1ac602413df4a7a6f3364680af37cb54b27f8afd553d1d91811969a06a2ef Loading...

	bowfile.com/themes/spirit/assets/frontend/js/scripts.js	67 kB	2023-03-07	2024-05-10
Pretty URL bowfile.com/themes/spirit/assets/frontend/js/scripts.js IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:12 Last Seen2024-05-10 21:19:48 Times Seen254 Hash 97096667b5bfc5bf6326cc0e5fb724ee e957d5ef30b7a4e807a13c0e39483607d8f74855 02945e324e7c86a1ee921da7d8fa596a9c11878ccfe839ac70f8badcb674d522 Loading...

	waust.at/c.js	13 kB	2023-03-08	2024-05-11
Pretty URL waust.at/c.js IP 104.26.4.7 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:29 Last Seen2024-05-11 19:16:29 Times Seen707 Hash 45bfa6dedd6f7a9ce980b168e0350ad0 82c6b381da9abd8cb3db22ba4868287fe4e976f1 856420e1f59d0096185cdaac909fa54a9f596f52255d7a5f1ac502403f61d3ab Loading...

	bowfile.com/a1mf	67 B	2023-03-07	2024-05-04
Pretty URL bowfile.com/a1mf IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:28:15 Last Seen2024-05-04 19:43:45 Times Seen23 Hash 55c20c5cce7b67af7998b5db93974ef6 2577fe5855ae58f662735e6277b898b22b8092b8 da05550f0c39c7f6384caa33bd40f80ef005407f3336e7bc4e1f80fd4341dccf Loading...

	bowfile.com/themes/spirit/assets/frontend/js/flickity.min.js	54 kB	2023-03-07	2024-05-11
Pretty URL bowfile.com/themes/spirit/assets/frontend/js/flickity.min.js IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:01 Last Seen2024-05-11 17:43:33 Times Seen621 Hash 8c1e666176ac7bdce67d58b45823ffac 75947e4316427ce0c5e33300aeb4dc4d7d54dd09 c0b706b9b1ca12b631496228a0eb0fe15ccb14f21ab554f6c4b4f20474e4d3a6 Loading...

	interbuzznews.com/?l=9Ar4GAQWnVpoaSc&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fthubanoa.com%2F12%3Frnd%3D3513133290%26z%3D7209201%26b%3D20554761%26c%3D8014413%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D2265%2526key%253Dae7c6e37acb2af365375447fdcbca2a0%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DiF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG%26bag%3Dwmm3j4qvcl4KM6pE8WclYQ%3D%3D%26ruid%3D0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba%26ng%3D0%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fbowfile.com%252Fa1mf%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D1%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0	0 B	2023-03-07	2024-05-12
Pretty URL interbuzznews.com/?l=9Ar4GAQWnVpoaSc&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fthubanoa.com%2F12%3Frnd%3D3513133290%26z%3D7209201%26b%3D20554761%26c%3D8014413%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D2265%2526key%253Dae7c6e37acb2af365375447fdcbca2a0%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DiF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG%26bag%3Dwmm3j4qvcl4KM6pE8WclYQ%3D%3D%26ruid%3D0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba%26ng%3D0%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fbowfile.com%252Fa1mf%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D1%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 IP 139.45.197.154 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-12 00:36:12 Times Seen37552650 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	bowfile.com/a1mf	153 B	2023-03-07	2024-05-04
Pretty URL bowfile.com/a1mf IP 104.21.37.79 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:28:15 Last Seen2024-05-04 19:43:45 Times Seen23 Hash fcac8932c958dcd66ad3026ff21cbb63 e11ee4fb499b3b47ff57119b9ed02c399a82bc4d 88bb5609315f9ea92a0efcc106793ef6844d0d99c1c60437cc22f5ac4e2da670 Loading...

	bowfile.com/_/mss/boq-content-ads-contributor/_/js/k=boq-content-ads-contributor.ContributorServingResponseClientJs.en_US.uDctmmgJLBg.es5.O/d=1/exm=kernel_loader,loader_js_executable/ed=1/rs=AJlcJMwRQ6CO70wkwrQ6NU1ioRkIOK_vvA/m=web_iab_tcf_v2_wall_executable	380 kB	2024-04-28	2024-04-28
Pretty URL bowfile.com/_/mss/boq-content-ads-contributor/_/js/k=boq-content-ads-contributor.ContributorServingResponseClientJs.en_US.uDctmmgJLBg.es5.O/d=1/exm=kernel_loader,loader_js_executable/ed=1/rs=AJlcJMwRQ6CO70wkwrQ6NU1ioRkIOK_vvA/m=web_iab_tcf_v2_wall_executable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 00:48:01 Last Seen2024-04-28 00:48:01 Times Seen1 Hash 56eea514d8a0ea7b8eb6637773ebccc1 26449b6ff3d731cc1911e73147eca5f8a7da3bbf 301485b5ca5a07c5e250d1045e0e5fe0df026978617cd56f70fea2184a6c068e Loading...

HTTP Transactions (61)

URL IP Response Size

bowfile.com/lg.png

104.21.37.79

200 OK

806 kB

URL GET HTTP/3
bowfile.com/lg.png
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
PNG image data, 4804 x 1043, 8-bit/color RGBA, non-interlaced
Size
806 kB (806415 bytes)
Hash
1b63e25741f3459f3adf825eabad3c8f
6f8e62a04b5daac82158f1a44ca132ed11fa102f
0654449cc73d1f0ea7c0929fffc64d6e6fcdbcab55c0293cd35deaf6a0a55f57

HTTP Headers

GET /lg.png HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: image/png
content-length: 806415
last-modified: Wed, 19 May 2021 00:28:32 GMT
etag: "60a45bb0-c4e0f"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 427
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sOHA6pdsdJ5RIDQrweOygBx0WlIpUzFkLuQnnalkzsrUcs%2Fz8XqAVpoi5N3MEijke3vWCIqMtM%2FBDTbmuVxNz6V1ezObkMyIvA0nMaHx1QGTJURINIdGnDsmD0SHrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b25acb1f7b56cb-OSL
alt-svc: h3=":443"; ma=86400

cdn.jsdelivr.net/gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.css

151.101.129.229

200 OK

6.3 kB

URL GET HTTP/2
cdn.jsdelivr.net/gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.css
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (32207), with no line terminators
Size
6.3 kB (6317 bytes)
Hash
670b37e75a82edfd7af1776c3081eac5
c82270e3c756dffc3af5b6a7250600051c6d4311
ca046b8b1b1094107205988e7096a687b241c8ef5f3fefe5e543ed28d26646c1

HTTP Headers

GET /gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 3.0.0
x-jsd-version-type: version
etag: W/"7dcf-yCJw48dW3/w69banJQYABRxtQxE"
content-encoding: br
accept-ranges: bytes
date: Sat, 27 Apr 2024 22:47:29 GMT
age: 6045294
x-served-by: cache-fra-eddf8230113-FRA, cache-hel1410024-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6317
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-G45GX6EFX2

142.250.74.168

200 OK

93 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-G45GX6EFX2
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (3034)
Size
93 kB (92829 bytes)
Hash
90306736b4393e6ebac3aafe9bd30e2f
7b63dcdc956889ca91940fa296076015529988b3
0c745fad27c082cc067bb74f9c99e7e9ca5fd674f9a539052ac64336d7e530a9

HTTP Headers

GET /gtag/js?id=G-G45GX6EFX2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 27 Apr 2024 22:47:29 GMT
expires: Sat, 27 Apr 2024 22:47:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92829
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.jsdelivr.net/gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.umd.js

151.101.129.229

200 OK

11 kB

URL GET HTTP/3
cdn.jsdelivr.net/gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.umd.js
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (23125)
Size
11 kB (10566 bytes)
Hash
cbdca47e478059353766a77f91ebd1ec
e75a6d9fe80bbfbfb21f09fdb65e2229b9118698
222b5e0b89eebb3777ce3650e3b4ac1a5633ff19d05ef37d2a761c5b41214ec9

HTTP Headers

GET /gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.umd.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-length: 10566
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.0.0
x-jsd-version-type: version
etag: W/"5add-51ptn+gLv7+yHwn9tl4iKbkRhpg"
content-encoding: br
accept-ranges: bytes
date: Sat, 27 Apr 2024 22:47:30 GMT
age: 2838930
x-served-by: cache-fra-etou8220153-FRA, cache-hel1410022-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:35:00 GMT
expires: Fri, 25 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 245550
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2

216.58.207.227

200 OK

19 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19280, version 1.0
Size
19 kB (19280 bytes)
Hash
386fb59be54b2d819064af98e57cc226
9e2d14d736be97ec84bfca3513558450cd6e3249
b4855cc8ec721cbaf27f3c907345e101b1524858221c14faa79df34cb2f84991

HTTP Headers

GET /s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19280
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 Apr 2024 01:22:45 GMT
expires: Sun, 27 Apr 2025 01:22:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:02:23 GMT
content-type: font/woff2
age: 77085
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:35:00 GMT
expires: Fri, 25 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 245550
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:35:00 GMT
expires: Fri, 25 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 245550
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:35:00 GMT
expires: Fri, 25 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 245550
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bowfile.com/themes/spirit/assets/frontend/fonts/stack-interface.woff2?33839631

104.21.37.79

200 OK

4.3 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/fonts/stack-interface.woff2?33839631
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 4292, version 1.0
Size
4.3 kB (4292 bytes)
Hash
ae072782b361d2afdbf43db08d3cfb73
f3db2e65b53d97491672f8631e21d6d05905cc88
31205df908aed9881f6d2d3ae7d38975252bf99e38268978b4236dc3c314754b

HTTP Headers

GET /themes/spirit/assets/frontend/fonts/stack-interface.woff2?33839631 HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/themes/spirit/assets/frontend/css/stack-interface.css
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:30 GMT
content-type: font/woff2
content-length: 4292
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
etag: "5f8bebc0-10c4"
cache-control: public, max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=78IJlgS0yTAoYGIAKyOvsAgHNSDftD4ZobUy8xGBb2YRgL1alDDUXGHFPb9qW2p5oGcH2aZVGoe9ZD0pklupvoCkGIXvJfL1DhDCUoGF5Txv2NREZ7z7APZWNh%2FlWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b25ace59a356cb-OSL
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/fonts/font-awesome/fa-solid-900.woff2

104.21.37.79

200 OK

80 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/fonts/font-awesome/fa-solid-900.woff2
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 80148, version 331.17301
Size
80 kB (80148 bytes)
Hash
c500da19d776384ba69573ae6fe274e7
6290834672aba86d5b6c1c73b30b57c9c53996f7
cfe3b7382e477059da11be2099914b94f0e2a4f08240c60542c376957b8d9658

HTTP Headers

GET /themes/spirit/assets/frontend/fonts/font-awesome/fa-solid-900.woff2 HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/themes/spirit/assets/frontend/css/font-awesome.min.css
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:30 GMT
content-type: font/woff2
content-length: 80148
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
etag: "5f8bebc0-13914"
cache-control: public, max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oLIh03pkvVVVsgAa4k022I3TOOatrdPnrnrtmY%2B%2B%2BRRkKcnIVU46oGwdfc1%2F02P6w8k5cYjNA0it74sF7Mec7rcHrDhRoaOLgwEJq2mYGcuAjfHvm%2BXdCCb0iUtwIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b25ace399c56cb-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2

216.58.207.227

200 OK

25 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 24984, version 1.0
Size
25 kB (24984 bytes)
Hash
303a79d404d97ccbb3d803088fc387d8
66e3525b79a1a58a63fe0934f31676dd40c7f033
7e510e61c497d334da21eccda06df5d3a428c9ea94d6903b6138e7c7255aba0f

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:32:04 GMT
expires: Fri, 25 Apr 2025 17:32:04 GMT
cache-control: public, max-age=31536000
age: 191726
last-modified: Thu, 14 Dec 2023 02:04:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

waust.at/c.js

104.26.4.7

200 OK

42 kB

URL GET HTTP/2
waust.at/c.js
IP
104.26.4.7:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:3D:6E:A9:C7:6B:CD:4B:7B:04:51:4F:D1:D7:10:2D:12:92:F9:58
ValiditySun, 04 Jun 2023 00:00:00 GMT - Mon, 03 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (12997), with no line terminators
Size
42 kB (41732 bytes)
Hash
45bfa6dedd6f7a9ce980b168e0350ad0
82c6b381da9abd8cb3db22ba4868287fe4e976f1
856420e1f59d0096185cdaac909fa54a9f596f52255d7a5f1ac502403f61d3ab

HTTP Headers

GET /c.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:21 GMT
etag: W/"63c04119-32c5"
expires: Sun, 28 Apr 2024 22:41:19 GMT
cache-control: max-age=86400
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 370
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CVGU34cuaDZmxmFL1mhKaM2AwgLde5ZlmT9Dp1iGZAoQtoty96pafiSdlJ6iFAFf3oEXcKp7zw1rH963CKoaDk9hI43jXic4lpBUmNjIrh87OMwDzeHgrF5U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b25acb9c4d5684-OSL
content-encoding: br
X-Firefox-Spdy: h2

thubanoa.com/1?z=7209201

139.45.197.242

200 OK

17 kB

URL GET HTTP/2
thubanoa.com/1?z=7209201
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://bowfile.com/a1mf
Certificate
IssuerLet's Encrypt
Subjectthubanoa.com
FingerprintBE:0B:5D:E0:42:7E:07:23:0E:F0:48:66:B2:B6:34:A3:E5:89:F8:68
ValidityThu, 18 Apr 2024 23:34:42 GMT - Wed, 17 Jul 2024 23:34:41 GMT

File type
gzip compressed data, max speed, from Unix
Size
17 kB (16672 bytes)
Hash
4f55f0a5871cbf9c3d0951407e87d4f2
852fc6c05c79329c085218956f321a3cb8104426
3637e68ae876eea9c733f402f234fa25d47fd8a0898b840eeb21bcbc61c257ce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1?z=7209201 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 22:47:30 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: da9fa989a0bef74ec1b19bcc00408e42
access-control-expose-headers: X-Sc
x-sc: bJZsCrmhuRif1op8Vn-wjz1ZhtkbroAyNEr05AQ68j0Y7gJSHxq-xA6BUFyK8l7ERhhlbXIvTmLNoXzVMBRH8G7Hi10=
set-cookie: scm=1; expires=Sun, 27 Apr 2025 22:47:30 GMT; secure; SameSite=None
OAID=04004bf7fe374c84e981d6a1cc1050ee; expires=Sun, 27 Apr 2025 22:47:30 GMT; secure; SameSite=None
oaidts=1714258050; expires=Sun, 27 Apr 2025 22:47:30 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

thubanoa.com/27/7552beb94fc0bdff7bbb33cad3d1ab0a

139.45.197.242

200 OK

192 kB

URL GET HTTP/2
thubanoa.com/27/7552beb94fc0bdff7bbb33cad3d1ab0a
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://bowfile.com/a1mf
Certificate
IssuerLet's Encrypt
Subjectthubanoa.com
FingerprintBE:0B:5D:E0:42:7E:07:23:0E:F0:48:66:B2:B6:34:A3:E5:89:F8:68
ValidityThu, 18 Apr 2024 23:34:42 GMT - Wed, 17 Jul 2024 23:34:41 GMT

File type
gzip compressed data, max speed, from Unix
Size
192 kB (192022 bytes)
Hash
659dcf418b6c828f3b785382e2c6fcad
a66341b350a86e8c73597a259b5749c984040fdc
0fd01cf2c8508325e425231dc7a4716cf2962dac6f04ca79612c7d13145fd7f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /27/7552beb94fc0bdff7bbb33cad3d1ab0a HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Cookie: scm=1; OAID=04004bf7fe374c84e981d6a1cc1050ee; oaidts=1714258050
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 22:47:30 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 74af8aa7180d06313ff9aeeb0353b738
cache-control: max-age:290304000, public
last-modified: Tue, 09 Apr 2024 03:16:58 GMT
expires: Tue, 09 May 2084 03:16:58 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

my.rtmark.net/gid.js

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://bowfile.com/a1mf
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC
ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT

File type
JSON text data
Size
65 B (65 bytes)
Hash
6fa0696651dbf90322c25533eec20be2
6ce896fed813c1396cace6a941dd5d18117a285d
2e86559abfea1ad41dce46b45989c9cc43315a26094e355daf5c8ecd77621cdf

HTTP Headers

GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 22:47:30 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://bowfile.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=08004b5c20394ce1fa6440ff4bff8904; expires=Sun, 27 Apr 2025 22:47:30 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

bowfile.com/themes/spirit/assets/frontend/js/smooth-scroll.min.js

104.21.37.79

200 OK

2.8 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/js/smooth-scroll.min.js
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
JavaScript source, ASCII text, with very long lines (4887), with CRLF line terminators
Size
2.8 kB (2772 bytes)
Hash
c9e3a210d83398f301b3a7049c259676
8e227bb40fe120841829a7fef0ffeb091d179a91
aeda362b1d693480453b895cbcf8b92629f58240c42ba8c643f0d5d338baf805

HTTP Headers

GET /themes/spirit/assets/frontend/js/smooth-scroll.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-178c"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=083ucQiq6lpHNHqRO8v2Ri8cLtnEE2arsZmrUnsubL1at7X4PzvOqDNFY89ZCLBlvxhkzjYP74iSA%2FP0cGMQLAZ5aJCuHDS6VFmloGXfgNfYJIz%2Bur7y2RoTOqaaug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb3f9256cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

thubanoa.com/11?rnd=2512797885&z=7209201&b=20554761&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=iF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG&ruid=0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2Fa1mf&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&ot=100

139.45.197.242

200 OK

0 B

URL GET HTTP/2
thubanoa.com/11?rnd=2512797885&z=7209201&b=20554761&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=iF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG&ruid=0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2Fa1mf&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&ot=100
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://bowfile.com/a1mf
Certificate
IssuerLet's Encrypt
Subjectthubanoa.com
FingerprintBE:0B:5D:E0:42:7E:07:23:0E:F0:48:66:B2:B6:34:A3:E5:89:F8:68
ValidityThu, 18 Apr 2024 23:34:42 GMT - Wed, 17 Jul 2024 23:34:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /11?rnd=2512797885&z=7209201&b=20554761&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=iF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG&ruid=0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2Fa1mf&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&ot=100 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Cookie: scm=1; OAID=08004b5c20394ce1fa6440ff4bff8904; oaidts=1714258050
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 22:47:31 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://bowfile.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 6210e37801f1838905bed031860cd20f
access-control-expose-headers: X-Sc
set-cookie: OAID=08004b5c20394ce1fa6440ff4bff8904; expires=Sun, 27 Apr 2025 22:47:31 GMT; secure; SameSite=None
oaidts=1714258050; expires=Sun, 27 Apr 2025 22:47:31 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

bowfile.com/themes/spirit/assets/frontend/css/bootstrap.min.css

104.21.37.79

200 OK

61 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/css/bootstrap.min.css
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
ASCII text, with very long lines (65319), with CRLF line terminators
Size
61 kB (61051 bytes)
Hash
9b67b9ffbfcbe226a8c413fa740fd91c
7837bd0c312897e46311aaf472947f3e23d75df2
2642f94894419d1cebdc4a010b9380a7403063dd6d28ea8a80bd5ebd01186732

HTTP Headers

GET /themes/spirit/assets/frontend/css/bootstrap.min.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: text/css
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
etag: W/"5f8bebbe-12c7a"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r688DEiybUseXA89JKMHThw1YdAKdtPaahRwuTFcRI7sNPj9AdqPe5M2b4M%2BiNuk1G77lcNLBKuJt12padSGzsqy%2B9fxL3%2FjyAxgviURTwLLY88tTqvgRIUlbv34vg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb0f6656cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/css/iconsmind.css

104.21.37.79

200 OK

63 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/css/iconsmind.css
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
63 kB (63110 bytes)
Hash
145bda93bb0b92ed644cdc2a0604e19f
32ed5b9253ed44fd430c0a2897e7ccbea413e7f9
38391d0c01d7fee8c61a80c9b507ef05d0cb76876a42feebded8b06905015d13

HTTP Headers

GET /themes/spirit/assets/frontend/css/iconsmind.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=102727
etag: W/"5f8bebbe-19147"
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JY07cN%2B5XucJ8CuQLYotB5%2Bs1hus9zv1WV9QXoUe%2BpQZK9VW%2BhdZZLJfGN2mna8HSpzc20CLkQHdHsVvwEt5z2LsOnWU%2BTe4QPJxn0AGIIFeRolPtEXvsq9aKietpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb0f6e56cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

t.dtscout.com/i/?l=https%3A%2F%2Fbowfile.com%2Fa1mf&j=

141.101.120.10

200 OK

32 kB

URL GET HTTP/2
t.dtscout.com/i/?l=https%3A%2F%2Fbowfile.com%2Fa1mf&j=
IP
141.101.120.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectdtscout.com
Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21
ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT

File type
ASCII text, with very long lines (2077)
Size
32 kB (31738 bytes)
Hash
51bd741af3fcc4984d1a753eebfa1141
534664acf69cbbb5c9b97c96b63dd37bdc580da2
3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c

HTTP Headers

GET /i/?l=https%3A%2F%2Fbowfile.com%2Fa1mf&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 27 Apr 2024 22:47:30 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=1; Domain=dtscout.com; Expires=Sun, 28-Apr-2024 00:10:50 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Sun, 28-Apr-2024 02:47:30 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1714258050; Domain=dtscout.com; Expires=Mon, 05-Aug-2024 22:47:30 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.231
expires: Sat, 27 Apr 2024 22:47:29 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zuEvjZBQDcqxOFpZk3V%2FlQHpoMVwRHTze4qr48bL0r3AM%2F3toJadzehHDS%2BmcXAq69IadNlo12f98xulWInRXOtc3vhMwg4vril4zvD3SWFcX6gvH%2FJeWITtqJ8dHXA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25ad04b8c8db7-HEL
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:02:10 GMT
expires: Sat, 26 Apr 2025 06:02:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 146721
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bowfile.com/themes/spirit/assets/frontend/css/theme.css?var1.2

104.21.37.79

200 OK

45 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/css/theme.css?var1.2
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
45 kB (44608 bytes)
Hash
09baa58ba7a96054c4aa605e2a9d51b2
3477c84fc652d540594c09fc2905c393ec4d655d
5f70fef49b1fa602e97e2f12a0a3ca46a5db090fa34dad736f8ae5c57c9ba0a6

HTTP Headers

GET /themes/spirit/assets/frontend/css/theme.css?var1.2 HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=207645
etag: W/"60a91951-32b1d"
last-modified: Sat, 22 May 2021 14:46:41 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5B2GXg7Im%2FqtzxPqHc7%2B384frghf1mEIhB1k%2Fh%2F%2FrOe6Z8izWx6ngpZcpadOGvMfzNSB5YWLY2ut3LsVzteLy%2BxK51Fh0AqH0cWLxNKKSX1ckL22G5WJ%2FxQoFg1TEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb1f7356cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2

216.58.207.227

200 OK

25 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 24984, version 1.0
Size
25 kB (24984 bytes)
Hash
303a79d404d97ccbb3d803088fc387d8
66e3525b79a1a58a63fe0934f31676dd40c7f033
7e510e61c497d334da21eccda06df5d3a428c9ea94d6903b6138e7c7255aba0f

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:32:04 GMT
expires: Fri, 25 Apr 2025 17:32:04 GMT
cache-control: public, max-age=31536000
age: 191727
last-modified: Thu, 14 Dec 2023 02:04:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

interbuzznews.com/contents/s/84/41/db/7cdd020415d52bac4f03e7e7b0/0315703759395.jpeg

139.45.197.154

200 OK

19 kB

URL GET HTTP/2
interbuzznews.com/contents/s/84/41/db/7cdd020415d52bac4f03e7e7b0/0315703759395.jpeg
IP
139.45.197.154:443
ASN
#9002 RETN Limited

Requested by
https://interbuzznews.com/?l=9Ar4GAQWnVpoaSc&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fthubanoa.com%2F12%3Frnd%3D3513133290%26z%3D7209201%26b%3D20554761%26c%3D8014413%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D2265%2526key%253Dae7c6e37acb2af365375447fdcbca2a0%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DiF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG%26bag%3Dwmm3j4qvcl4KM6pE8WclYQ%3D%3D%26ruid%3D0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba%26ng%3D0%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fbowfile.com%252Fa1mf%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D1%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Certificate
IssuerLet's Encrypt
Subjectinterbuzznews.com
Fingerprint68:C3:B4:C2:C5:45:68:EC:5F:B6:2A:10:57:7A:F8:2B:94:11:B7:F0
ValidityThu, 29 Feb 2024 05:14:58 GMT - Wed, 29 May 2024 05:14:57 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 256x256, components 3
Size
19 kB (19059 bytes)
Hash
8441db7cdd020415d52bac4f03e7e7b0
dd8305ab27ab5b7ba4106f4305f601c9941e1efa
d14055e7d300e4f05156c45b09ee102df80e71e58607cd441e68e99b371d3c22

HTTP Headers

GET /contents/s/84/41/db/7cdd020415d52bac4f03e7e7b0/0315703759395.jpeg HTTP/1.1
Host: interbuzznews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://interbuzznews.com/?l=9Ar4GAQWnVpoaSc&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fthubanoa.com%2F12%3Frnd%3D3513133290%26z%3D7209201%26b%3D20554761%26c%3D8014413%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D2265%2526key%253Dae7c6e37acb2af365375447fdcbca2a0%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DiF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG%26bag%3Dwmm3j4qvcl4KM6pE8WclYQ%3D%3D%26ruid%3D0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba%26ng%3D0%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fbowfile.com%252Fa1mf%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D1%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 22:47:31 GMT
content-type: image/jpeg
content-length: 19059
last-modified: Tue, 09 Aug 2022 07:56:56 GMT
vary: Accept-Encoding
etag: "62f21348-4a73"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

interbuzznews.com/contents/s/70/5f/88/69b97bfaaaf73fff119f88c88a/0699379061565.jpeg

139.45.197.154

200 OK

46 kB

URL GET HTTP/2
interbuzznews.com/contents/s/70/5f/88/69b97bfaaaf73fff119f88c88a/0699379061565.jpeg
IP
139.45.197.154:443
ASN
#9002 RETN Limited

Requested by
https://interbuzznews.com/?l=9Ar4GAQWnVpoaSc&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fthubanoa.com%2F12%3Frnd%3D3513133290%26z%3D7209201%26b%3D20554761%26c%3D8014413%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D2265%2526key%253Dae7c6e37acb2af365375447fdcbca2a0%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DiF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG%26bag%3Dwmm3j4qvcl4KM6pE8WclYQ%3D%3D%26ruid%3D0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba%26ng%3D0%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fbowfile.com%252Fa1mf%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D1%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Certificate
IssuerLet's Encrypt
Subjectinterbuzznews.com
Fingerprint68:C3:B4:C2:C5:45:68:EC:5F:B6:2A:10:57:7A:F8:2B:94:11:B7:F0
ValidityThu, 29 Feb 2024 05:14:58 GMT - Wed, 29 May 2024 05:14:57 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 492x328, components 3
Size
46 kB (46345 bytes)
Hash
705f8869b97bfaaaf73fff119f88c88a
68635b1fa3d363472b016b8653fb4676b1a0f226
12cb0e656fef9d32c5c7090b8db69914af5a11207314cb3c5c9e7af18fbfed83

HTTP Headers

GET /contents/s/70/5f/88/69b97bfaaaf73fff119f88c88a/0699379061565.jpeg HTTP/1.1
Host: interbuzznews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://interbuzznews.com/?l=9Ar4GAQWnVpoaSc&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fthubanoa.com%2F12%3Frnd%3D3513133290%26z%3D7209201%26b%3D20554761%26c%3D8014413%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D2265%2526key%253Dae7c6e37acb2af365375447fdcbca2a0%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DiF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG%26bag%3Dwmm3j4qvcl4KM6pE8WclYQ%3D%3D%26ruid%3D0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba%26ng%3D0%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fbowfile.com%252Fa1mf%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D1%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 22:47:31 GMT
content-type: image/jpeg
content-length: 46345
last-modified: Tue, 09 Aug 2022 07:56:53 GMT
vary: Accept-Encoding
etag: "62f21345-b509"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

lh3.googleusercontent.com/xYnjopJHeZyklvZ4_XScrYPL3gmjSFzOnjYUA2m9A-OH7y6ve6Bv7DBPf-W7UnkwmNuIe-_fXsoi1N_DE8x3mdJozlAJjA64nB8uzECa1nPORMdD1mK2=h60

142.250.74.97

200 OK

2.9 kB

URL GET HTTP/2
lh3.googleusercontent.com/xYnjopJHeZyklvZ4_XScrYPL3gmjSFzOnjYUA2m9A-OH7y6ve6Bv7DBPf-W7UnkwmNuIe-_fXsoi1N_DE8x3mdJozlAJjA64nB8uzECa1nPORMdD1mK2=h60
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintD1:64:F1:6B:AC:65:FC:D3:5F:42:54:08:AE:BC:0A:AC:D1:EA:88:2C
ValidityMon, 08 Apr 2024 07:27:47 GMT - Mon, 01 Jul 2024 07:27:46 GMT

File type
PNG image data, 277 x 60, 8-bit colormap, non-interlaced
Size
2.9 kB (2936 bytes)
Hash
59182fc87cde731b4778442af528d46f
ae17a126774d8c3bf9bf9e9c08e0f6c32b91c8cb
4411c5deef208cec3853541ef2fe7ec0743105aa8c7f1e3bbbff08bd11a10f3a

HTTP Headers

GET /xYnjopJHeZyklvZ4_XScrYPL3gmjSFzOnjYUA2m9A-OH7y6ve6Bv7DBPf-W7UnkwmNuIe-_fXsoi1N_DE8x3mdJozlAJjA64nB8uzECa1nPORMdD1mK2=h60 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 2936
x-xss-protection: 0
date: Sat, 27 Apr 2024 19:31:07 GMT
expires: Sun, 28 Apr 2024 19:31:07 GMT
cache-control: public, max-age=86400, no-transform
age: 11784
etag: "v1"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2

216.58.207.227

200 OK

128 kB

URL GET HTTP/3
fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 128352, version 1.0
Size
128 kB (128352 bytes)
Hash
53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1

HTTP Headers

GET /s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 Apr 2024 06:44:19 GMT
expires: Sun, 27 Apr 2025 06:44:19 GMT
cache-control: public, max-age=31536000
age: 57792
last-modified: Mon, 08 Apr 2024 19:04:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fundingchoicesmessages.google.com/el/AGSKWxUMUdThmi5YJXudkRLsGFO5IpwsjGxfeoqFjaTYhFtn0EXreTePvxS2jMGnbEGRAzTf6SM4392t05yLSZGGMItkJZXZBKkwKLb2xoNIGivlsIJ_-F_ybMszhzZu1emkpskI8pVE8A==

216.58.211.14

204 No Content

0 B

URL POST HTTP/3
fundingchoicesmessages.google.com/el/AGSKWxUMUdThmi5YJXudkRLsGFO5IpwsjGxfeoqFjaTYhFtn0EXreTePvxS2jMGnbEGRAzTf6SM4392t05yLSZGGMItkJZXZBKkwKLb2xoNIGivlsIJ_-F_ybMszhzZu1emkpskI8pVE8A==
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1
ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /el/AGSKWxUMUdThmi5YJXudkRLsGFO5IpwsjGxfeoqFjaTYhFtn0EXreTePvxS2jMGnbEGRAzTf6SM4392t05yLSZGGMItkJZXZBKkwKLb2xoNIGivlsIJ_-F_ybMszhzZu1emkpskI8pVE8A== HTTP/1.1
Host: fundingchoicesmessages.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 169
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=utf-8
access-control-allow-methods: POST, GET, OPTIONS
access-control-max-age: 86400
access-control-allow-origin: https://bowfile.com
access-control-allow-credentials: true
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 27 Apr 2024 22:47:31 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport, script-src 'nonce-PwI1RwNKwBKkqQ6gAQG4ig' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
reporting-endpoints: default="/_/ContributorLoggingHttp/web-reports?context=eJzjktDikmII0pBiqGV4xtQKxE7pM1hDgFiIh6O5cdtGNoETM58eYgIAw8oMJg"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

bowfile.com/themes/spirit/assets/frontend/css/socicon.css

104.21.37.79

200 OK

2.2 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/css/socicon.css
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
ASCII text, with very long lines (7641), with no line terminators
Size
2.2 kB (2150 bytes)
Hash
07e4b8874a00408fb4997bca9a7625aa
2c078c0e6d9ee142156a80296d763b013099bcbc
bcb499166a81c2c68de921f186c95ed6c29859acf2a07422c15ddb1f4b9e7686

HTTP Headers

GET /themes/spirit/assets/frontend/css/socicon.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=9838
etag: W/"5f8bebbe-266e"
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tM%2BgS8i1uK4MP5N8deaBy1psIKSIJlNB2g%2B4%2BVioJy2U3kc1GOfljnOHrmvE6bqRp8ILqGpvjfQfa%2FwT1gMke%2Fr1%2BNCfPObHHhty4289yWiC%2BA8DVOasiSZdBx5ujw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb0f6856cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/css/stack-interface.css

104.21.37.79

200 OK

5.6 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/css/stack-interface.css
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
ASCII text, with very long lines (1667), with no line terminators
Size
5.6 kB (5616 bytes)
Hash
d2acd427ba6054b822fe2b23d2049f1b
727871cf01841eb42ab2218d9d4ca7df529a3d0d
dc3e1c7f25f8898edf9bba53c1cf0730271371e373bdd4dad4535cecedf85ba3

HTTP Headers

GET /themes/spirit/assets/frontend/css/stack-interface.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=3160
etag: W/"5f8bebbe-c58"
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6H6lOUidAeEGjwJBF7g1UTOGrqCIt5sKl9%2FnAX%2Bia%2FbfN0CsOgprcgUe1sErwqMw5ncsSlvZq8A5Cggk0YG%2FmH7xsirPgbFIY2uWfA0cPe%2BNGDx8xqLQkPOo6t2pqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb0f6756cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

thubanoa.com/11?rnd=2512797885&z=7209201&b=20554761&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=iF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG&ruid=0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2Fa1mf&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1

139.45.197.242

200 OK

0 B

URL GET HTTP/2
thubanoa.com/11?rnd=2512797885&z=7209201&b=20554761&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=iF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG&ruid=0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2Fa1mf&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://bowfile.com/a1mf
Certificate
IssuerLet's Encrypt
Subjectthubanoa.com
FingerprintBE:0B:5D:E0:42:7E:07:23:0E:F0:48:66:B2:B6:34:A3:E5:89:F8:68
ValidityThu, 18 Apr 2024 23:34:42 GMT - Wed, 17 Jul 2024 23:34:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /11?rnd=2512797885&z=7209201&b=20554761&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=iF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG&ruid=0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2Fa1mf&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Cookie: scm=1; OAID=08004b5c20394ce1fa6440ff4bff8904; oaidts=1714258050
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 22:47:34 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://bowfile.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 9c780eb8ec2d392a7b371a4dd1fef1b6
access-control-expose-headers: X-Sc
set-cookie: OAID=08004b5c20394ce1fa6440ff4bff8904; expires=Sun, 27 Apr 2025 22:47:34 GMT; secure; SameSite=None
oaidts=1714258050; expires=Sun, 27 Apr 2025 22:47:34 GMT; secure; SameSite=None
oaidvc=1; expires=Sun, 27 Apr 2025 22:47:34 GMT; secure; SameSite=None
CNT=1_v1_CaQ5AQEAAACATQAA; expires=Sat, 27 Apr 2024 23:47:34 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

bowfile.com/themes/spirit/assets/frontend/js/flickity.min.js

104.21.37.79

200 OK

54 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/js/flickity.min.js
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
JavaScript source, ASCII text, with very long lines (32032), with CRLF line terminators
Size
54 kB (53873 bytes)
Hash
8c1e666176ac7bdce67d58b45823ffac
75947e4316427ce0c5e33300aeb4dc4d7d54dd09
c0b706b9b1ca12b631496228a0eb0fe15ccb14f21ab554f6c4b4f20474e4d3a6

HTTP Headers

GET /themes/spirit/assets/frontend/js/flickity.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-d271"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B7bl%2Bb%2FEOQtIomMlXTTWjDxZSnWRvt9E7b5laRkW3T95pz1LKyFmR%2BGVisI2sKWn%2BXFX8xULnwP8NaSIpe6UwsptUj8HXNfX2NAmiO4seLHsf3durQNm%2FLLgjjp%2BWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb2f8956cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/js/scripts.js

104.21.37.79

200 OK

67 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/js/scripts.js
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
JavaScript source, ASCII text, with very long lines (4787)
Size
67 kB (67039 bytes)
Hash
97096667b5bfc5bf6326cc0e5fb724ee
e957d5ef30b7a4e807a13c0e39483607d8f74855
02945e324e7c86a1ee921da7d8fa596a9c11878ccfe839ac70f8badcb674d522

HTTP Headers

GET /themes/spirit/assets/frontend/js/scripts.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=114862
etag: W/"5f8bebc0-1c0ae"
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gFJo4xhGnCS64O%2BD78b1GkZkuOcYiev3crzGpiMG9dlTrDtjQt%2FPgFKD2Ww6lFWzbkPg%2F2GhV3ypvhdIW0ic%2FqHHVM26cKebC8NLGHJ7VGk58FJvUluXqqobe8aHpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb3f9556cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

142.250.74.106

200 OK

112 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Archivo:400,500|Arimo:400,500|Bitter:400,500|EB+Garamond:400,500|Lato|Libre+Baskervill|Libre+Franklin:400,500|Lora:400,500|Google+Sans:regular,medium:400,500|Material+Icons|Google+Symbols|Merriweather|Montserrat:400,500|Mukta:400,500|Muli:400,500|Nunito:400,500|Open+Sans:400,500,600|Open+Sans+Condensed:400,600|Oswald:500|Playfair+Display:400,500|Poppins:400,500|Raleway:400,500|Roboto:400,500|Roboto+Condensed:400,500|Roboto+Slab:400,500|Slabo+27px|Source+Sans+Pro|Ubuntu:400,500|Volkhov&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (1572)
Size
112 kB (112083 bytes)
Hash
eff1b3bba574fbde472023000f0f94a1
c0cdb3713e4da350cf4acd744f702368f5a34cc2
5efdb0b51d73845e5b1a962fa8e128eb0486fee16fcdbbf05c79691ab95d79a6

HTTP Headers

GET /css?family=Archivo:400,500|Arimo:400,500|Bitter:400,500|EB+Garamond:400,500|Lato|Libre+Baskervill|Libre+Franklin:400,500|Lora:400,500|Google+Sans:regular,medium:400,500|Material+Icons|Google+Symbols|Merriweather|Montserrat:400,500|Mukta:400,500|Muli:400,500|Nunito:400,500|Open+Sans:400,500,600|Open+Sans+Condensed:400,600|Oswald:500|Playfair+Display:400,500|Poppins:400,500|Raleway:400,500|Roboto:400,500|Roboto+Condensed:400,500|Roboto+Slab:400,500|Slabo+27px|Source+Sans+Pro|Ubuntu:400,500|Volkhov&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 27 Apr 2024 22:47:31 GMT
date: Sat, 27 Apr 2024 22:47:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

bowfile.com/themes/spirit/assets/frontend/css/flickity.css

104.21.37.79

200 OK

1.9 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/css/flickity.css
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
ASCII text, with very long lines (1862), with no line terminators
Size
1.9 kB (1860 bytes)
Hash
1943c6f2f395c5338f1621d895eac4a3
488fc94f029cf9d3a2a75df7207037e33dc1ee70
2a0ec4432ad208cbbf8d38c894e7b299f3b4b4560f976f70bf7c5a7f22a0b9cb

HTTP Headers

GET /themes/spirit/assets/frontend/css/flickity.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=2521
etag: W/"5f8bebbe-9d9"
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bA93VAHlI8L1ZIOeAgT37%2B1%2FjTf5AXqFAGwuUWqNkyhcNaYirNmY1UhORXmJkF7CF4DMd%2FfwT3gnZwAl%2BdN2qmUaX1dKoy6KZsYN1P0z4lmJW83v7d4H74cYgqPgSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb0f6b56cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i

142.250.74.106

200 OK

37 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (1572)
Size
37 kB (37345 bytes)
Hash
c2b8ea09ec90a66034e1b61bc1f8e5d4
9558953728cacfc3433ba6281c1b4a58fbbc9d51
1c593f4a688585b14c31e71fc64bfaa81d768984cdf182bca40ba8c524582685

HTTP Headers

GET /css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 27 Apr 2024 22:47:29 GMT
date: Sat, 27 Apr 2024 22:47:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

interbuzznews.com/?l=9Ar4GAQWnVpoaSc&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fthubanoa.com%2F12%3Frnd%3D3513133290%26z%3D7209201%26b%3D20554761%26c%3D8014413%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D2265%2526key%253Dae7c6e37acb2af365375447fdcbca2a0%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DiF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG%26bag%3Dwmm3j4qvcl4KM6pE8WclYQ%3D%3D%26ruid%3D0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba%26ng%3D0%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fbowfile.com%252Fa1mf%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D1%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0

139.45.197.154

200 OK

9.5 kB

URL GET HTTP/2
interbuzznews.com/?l=9Ar4GAQWnVpoaSc&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fthubanoa.com%2F12%3Frnd%3D3513133290%26z%3D7209201%26b%3D20554761%26c%3D8014413%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D2265%2526key%253Dae7c6e37acb2af365375447fdcbca2a0%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DiF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG%26bag%3Dwmm3j4qvcl4KM6pE8WclYQ%3D%3D%26ruid%3D0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba%26ng%3D0%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fbowfile.com%252Fa1mf%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D1%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP
139.45.197.154:443
ASN
#9002 RETN Limited

Requested by
https://bowfile.com/a1mf
Certificate
IssuerLet's Encrypt
Subjectinterbuzznews.com
Fingerprint68:C3:B4:C2:C5:45:68:EC:5F:B6:2A:10:57:7A:F8:2B:94:11:B7:F0
ValidityThu, 29 Feb 2024 05:14:58 GMT - Wed, 29 May 2024 05:14:57 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9854), with no line terminators
Size
9.5 kB (9534 bytes)
Hash
3c136d65d60188a2ccc83b626cb1e2ea
96881b58ca3f3fa1145940f3d35f5347e5f9b886
35f06a0f5d3c48dd838b7ba6e3ac4b3948e54284fca4ab925cffe6ccb426304b

HTTP Headers

GET /?l=9Ar4GAQWnVpoaSc&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fthubanoa.com%2F12%3Frnd%3D3513133290%26z%3D7209201%26b%3D20554761%26c%3D8014413%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D2265%2526key%253Dae7c6e37acb2af365375447fdcbca2a0%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DiF5GU6nRfnYXWs1i5JEJ-x2GRJE_z3-_sMYwHUyLu7K0ashkKEdbSb3peJSgbNSCNHej1Qw2vcmbhEIFZ5T08Y689KwisItPzUi0pNSJ7UaKEelojZnmNpl_jAQoaC_gasHcw7Lw8DY254PX1bFtOuF7Tj0ykLnKpHHazG_2RVWu96-yWjikoLRSTJc_2WifSvMmqrmC9McEoOwrbD_IT2oxPh3IiNk5cmnWSTCcAjVtpPj3e9T-ZNH705g3xA9ok88jLRuGhpJ4v-C3NKA-o5nEE2uy4dtNrHESlVmmUhuWpq9t91pvALnLMNEDzSkOHWiu7AmO217mLTORyL_O5eI6rmmSjmTBBj0DJsk4WgbfP34JaI8KEiwnXcCF3lB4kG_pDrpUcal3icSpexS6KZk6a3kgJUFJJ4nXXorJzruT1vzO78DyJfCrsOMTNTk1CRjsGLJiuJtPnVIXtEnvjh-Lv-1BmrSVbsl1PaZCWlAPz_QY23OmrhzfDO1CeX-axlC733IQ_fsGDKXt6OWRBJCFdUcUYI-Dpdp3p-ULOM74ux0YRVliGrMbPREgPmVRqADURqv5Cm1UGV1D08t-OfENjiBUxlZHU3UwRHH5Xs_duJ4uKK7TLsp5VuHka9aG%26bag%3Dwmm3j4qvcl4KM6pE8WclYQ%3D%3D%26ruid%3D0f7b911c-4a78-49c5-9816-8cb4bfd1e4ba%26ng%3D0%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fbowfile.com%252Fa1mf%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D1%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interbuzznews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 22:47:31 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
set-cookie: reverse=Qoc60ctikywg73hfcGflL7OdcLnWcMVaAb2tyuKHUag; expires=Sat, 27-Apr-2024 23:47:31 GMT; Max-Age=3600; path=/
OAID=2e19832a88b934d5f2fd005a71a7b24d; expires=Wed, 23-Aug-2079 21:35:02 GMT; Max-Age=1745794051; path=/
oaidts=1714258051; expires=Wed, 23-Aug-2079 21:35:02 GMT; Max-Age=1745794051; path=/
syncedCookie=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: br
X-Firefox-Spdy: h2

bowfile.com/themes/spirit/assets/frontend/js/granim.min.js

104.21.37.79

200 OK

11 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/js/granim.min.js
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
JavaScript source, ASCII text, with very long lines (10573), with CRLF line terminators
Size
11 kB (10635 bytes)
Hash
714368d20c70f8c91b0a596e128dac07
563954ec3a896fc129d014f01836245829f6d01d
e70b27194b8793b68cccee28a6d8a1e39aae2ce5d28d5e71ac204d7a3ac164e3

HTTP Headers

GET /themes/spirit/assets/frontend/js/granim.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-298b"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LVUOzqLZFqXRbys%2BKRD7APad4uMiR%2BsyGEdF11T9aWAbQ11dNbLJs8RJDLk5%2B54PV1NcAy39Vo1oA5gZe3lAH%2FK3R4ze%2BOPFtBLUiO4Tqh%2FdKkO%2FKencNhfhY%2FPiuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb2f8c56cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/js/datepicker.js

104.21.37.79

200 OK

21 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/js/datepicker.js
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
JavaScript source, ASCII text, with very long lines (12694)
Size
21 kB (20951 bytes)
Hash
614058ddc049738b0905aed77acb29d0
694985606c2a3b482156035b1a1bb79aacf757e6
b6919dd92f8162e9d8b6642769217b9472c5bf423cdf82df50301a8af50ee53a

HTTP Headers

GET /themes/spirit/assets/frontend/js/datepicker.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=20975
etag: W/"5f8bebc0-51ef"
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6t0iW2T2fcxBBgvQ8uAsB1LEblcgOE0GPU%2FszD9Jo1leVXYTvAkUSsz1inBlnyNmfYDS5pjqvUg718qK6fpBDtTuxRb5s%2FFuYUM72mnCF8nHsY7WbOzi%2BudNIRcngA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb2f8b56cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/js/jquery.dataTables.min.js

104.21.37.79

200 OK

70 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/js/jquery.dataTables.min.js
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
JavaScript source, ASCII text, with very long lines (768), with CRLF line terminators
Size
70 kB (69754 bytes)
Hash
6fda19caa29287e6f584f0557fdeb6d4
40f58160090cd1f022704ee1352b343adb9e73b9
8ef749c3869991924150dc932c48cd57bf69ac25a378bb2e14f8e1733c17406f

HTTP Headers

GET /themes/spirit/assets/frontend/js/jquery.dataTables.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-1107a"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PKZXIr4dRjMOa7GddLgBl%2BKxmEQtk42NeYzTT1HHyTg7HLCERw9UED12lhh3wM2ZMpQ6tTBSnMDNikyLB52b6aWvT7%2BlqUqoHNtYN5LHJlecUdUhnD432qZI%2BNmebg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb2f8656cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/js/jquery.steps.min.js

104.21.37.79

200 OK

14 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/js/jquery.steps.min.js
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
JavaScript source, ASCII text, with very long lines (13686), with CRLF line terminators
Size
14 kB (13862 bytes)
Hash
0eef6fe46d14f860d5666d2c7b13a564
7ab5f7deaca2f71efbc3bf9f5ba27b89d4697dbe
95a14a4473ff130eb29f3cc02e135978505655e3c931b6c3726dedd4f558f843

HTTP Headers

GET /themes/spirit/assets/frontend/js/jquery.steps.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-3626"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8QjkAkhuqWF0By4gMJA6Ubm7IMyFyY18q9Lxvme5kyy1XG8FAd2yEhGYaRmEchA7yyOjES%2FPTOnm%2BMfptA%2F1f3JTQ5dYt7rFPQlmLGb2rPvRjKozz6Ib5dtjwERDUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb3f8f56cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

thubanoa.com/9?z=7209201&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2Fa1mf&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&oaid=08004b5c20394ce1fa6440ff4bff8904

139.45.197.242

204 No Content

0 B

URL OPTIONS HTTP/2
thubanoa.com/9?z=7209201&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2Fa1mf&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&oaid=08004b5c20394ce1fa6440ff4bff8904
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://bowfile.com/a1mf
Certificate
IssuerLet's Encrypt
Subjectthubanoa.com
FingerprintBE:0B:5D:E0:42:7E:07:23:0E:F0:48:66:B2:B6:34:A3:E5:89:F8:68
ValidityThu, 18 Apr 2024 23:34:42 GMT - Wed, 17 Jul 2024 23:34:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /9?z=7209201&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2Fa1mf&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&oaid=08004b5c20394ce1fa6440ff4bff8904 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://bowfile.com/
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx
date: Sat, 27 Apr 2024 22:47:31 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://bowfile.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

fundingchoicesmessages.google.com/f/AGSKWxX8UYQaT467R_Ht_YxP4BY3iGoaEgI7qguh6dy-njazLD6UXz8BOPZ81JY6fA05JuHSVZH-ZGv9b9KhF35qqJO7TYX_J1wMQoCcm8MJUBptVTDvnjYLRRXlwFtsWYZmtkX5o7Il6A==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzE0MjU4MDUwLDk3ODAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly9ib3dmaWxlLmNvbS9hMW1mIixudWxsLFtbOCwidURjdG1tZ0pMQmciXSxbOSwiZW4tVVMiXSxbMTksIjEiXSxbMTcsIlswXSJdXV0

216.58.211.14

200 OK

380 kB

URL GET HTTP/3
fundingchoicesmessages.google.com/f/AGSKWxX8UYQaT467R_Ht_YxP4BY3iGoaEgI7qguh6dy-njazLD6UXz8BOPZ81JY6fA05JuHSVZH-ZGv9b9KhF35qqJO7TYX_J1wMQoCcm8MJUBptVTDvnjYLRRXlwFtsWYZmtkX5o7Il6A==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzE0MjU4MDUwLDk3ODAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly9ib3dmaWxlLmNvbS9hMW1mIixudWxsLFtbOCwidURjdG1tZ0pMQmciXSxbOSwiZW4tVVMiXSxbMTksIjEiXSxbMTcsIlswXSJdXV0
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1
ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT

File type

Size
380 kB (380137 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /f/AGSKWxX8UYQaT467R_Ht_YxP4BY3iGoaEgI7qguh6dy-njazLD6UXz8BOPZ81JY6fA05JuHSVZH-ZGv9b9KhF35qqJO7TYX_J1wMQoCcm8MJUBptVTDvnjYLRRXlwFtsWYZmtkX5o7Il6A==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzE0MjU4MDUwLDk3ODAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly9ib3dmaWxlLmNvbS9hMW1mIixudWxsLFtbOCwidURjdG1tZ0pMQmciXSxbOSwiZW4tVVMiXSxbMTksIjEiXSxbMTcsIlswXSJdXV0 HTTP/1.1
Host: fundingchoicesmessages.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
timing-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 27 Apr 2024 22:47:31 GMT
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport, script-src 'nonce-fgUhUeiq1UxX1Wg_k7fmDg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist
cross-origin-opener-policy: same-origin
reporting-endpoints: default="/_/ContributorGlobalRouterHttp/web-reports?context=eJzjitDikmJw1pBiOO90h-k6ENcyPGNqBWIDjedMFkAs8fUlkxYQxzyfzpoCxE7pM1hDgNinfgZrHBC33jzHOh2ITy44z3oRiJP_nWctBWIhHo7mxm0b2QQ23P7eyAgA9-oq3Q"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

bowfile.com/themes/spirit/assets/frontend/css/cookiealert.css

104.21.37.79

200 OK

12 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/css/cookiealert.css
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
ASCII text, with very long lines (12014), with no line terminators
Size
12 kB (12014 bytes)
Hash
c03488f55b032d33ba579bb11b80f2ca
10737330b72796eaa3b3aaf044a0e7d5f9fd15f3
b712033ea1c370616c3105391e98e4867cea0159be8444ddd20249ea9888c950

HTTP Headers

GET /themes/spirit/assets/frontend/css/cookiealert.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=12369
etag: W/"5f8bebbe-3051"
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fxZIEgP7w3LL0IfBGyzyJ%2BKHB%2Fs2qnu8U686rNnNuuT5c5Y3idpur7P%2FBf2yc3y5MnU2s%2Fzwrde%2Fnrnu3%2FLbIjbkaiWeHVx5FjIosxGccjMdYjtlHyUxtmeX6lhgJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb1f7256cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:04:59 GMT
expires: Sat, 26 Apr 2025 06:04:59 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 146552
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bowfile.com/themes/spirit/assets/frontend/css/lightbox.min.css

104.21.37.79

200 OK

3.9 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/css/lightbox.min.css
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
ASCII text, with very long lines (4346), with no line terminators
Size
3.9 kB (3889 bytes)
Hash
569fda5171f960b5f17a7f219ebbfce8
00c5980c3d7f1186409dd7bca6efe168aaf123b5
1f1ba95edeff0d0da398b23e1ef0832985223e0d2facd1b0136c87be7bd935ea

HTTP Headers

GET /themes/spirit/assets/frontend/css/lightbox.min.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: text/css
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
etag: W/"5f8bebbe-f31"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zFpJJOeeWiz7D2lLNeFhUTSD2fs10ol3yEQjxk3p7BgksYkhKn11D%2BmxRJQi%2FPb8ucnmekBhawFipjMGmA0wjtYxojyz0kvT9YVqedZnAvR1POdJrENVUqHzpHOJCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb0f6956cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/css/jquery.steps.css

104.21.37.79

200 OK

4.1 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/css/jquery.steps.css
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
ASCII text, with very long lines (4143), with no line terminators
Size
4.1 kB (4143 bytes)
Hash
7c343c721bc783c5b8b2ca81cb940fba
2d340c14e31e158215354cb80e365148e97fcef4
a92a98c5f5245daff1abaff565ae26359f85d4cd1d383ff6e50cd599cf5b3e49

HTTP Headers

GET /themes/spirit/assets/frontend/css/jquery.steps.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=6019
etag: W/"5f8bebbe-1783"
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o2FVDaWDa2KRCFvFUr3S4GW0SqIUx2lbfjMUt%2BaJIK4vZMjyfpycpulqEER%2F8EzLn7WUgMwZupCyaI7%2FaCzBMJVe5fgpSbOGzj2X5Oe%2FoI5u0OVL62wXVGMlFzpGiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb1f7056cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

t.dtscout.com/pv/?_a=v&_h=bowfile.com&_ss=4pt2bnlrza&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5b6r&_cb=_dtspv.c

141.101.120.10

200 OK

51 B

URL GET HTTP/2
t.dtscout.com/pv/?_a=v&_h=bowfile.com&_ss=4pt2bnlrza&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5b6r&_cb=_dtspv.c
IP
141.101.120.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectdtscout.com
Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21
ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT

File type
ASCII text, with no line terminators
Size
51 B (51 bytes)
Hash
bf7fe9109c31a85692293283b59edaa2
149304cd7e415870805f6c479166e49a961a2013
ab8dba9225416adfea91e2ff52510d56637300bfa4c080b61c3334c741a4b313

HTTP Headers

GET /pv/?_a=v&_h=bowfile.com&_ss=4pt2bnlrza&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5b6r&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Cookie: m=1; oa=1; df=1714258050
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 27 Apr 2024 22:47:31 GMT
content-type: application/javascript
x-t: 0.197
x-c: 0
expires: Sat, 27 Apr 2024 22:47:30 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wcHlGk%2BtkhZLS2hnUW4z9HPYm9qDKBjLdCmJd%2FaRSnzh96MOz306BLiojTuTfjilz8%2FOwCblhEjsfzNrQDp4cRElIUtgPPC4YupdN3%2BPWhOspW4p%2FsAm38Wgb5sfDXg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25ad29c878db7-HEL
content-encoding: br
X-Firefox-Spdy: h2

139.45.197.242

200 OK

6.4 kB

URL POST HTTP/2
thubanoa.com/9?z=7209201&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2Fa1mf&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&oaid=08004b5c20394ce1fa6440ff4bff8904
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://bowfile.com/a1mf
Certificate
IssuerLet's Encrypt
Subjectthubanoa.com
FingerprintBE:0B:5D:E0:42:7E:07:23:0E:F0:48:66:B2:B6:34:A3:E5:89:F8:68
ValidityThu, 18 Apr 2024 23:34:42 GMT - Wed, 17 Jul 2024 23:34:41 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (6916), with no line terminators
Size
6.4 kB (6440 bytes)
Hash
f8c700342fa5b05af5223d404f64a636
23b568bb3d9bde172e615cd94f40470e58eca36a
17a6279b00ee8acb9728a125ccac5ae5f86a6afd4279f8dc55efb25425e35238

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /9?z=7209201&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2Fa1mf&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&oaid=08004b5c20394ce1fa6440ff4bff8904 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 180
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Cookie: scm=1; OAID=04004bf7fe374c84e981d6a1cc1050ee; oaidts=1714258050
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 22:47:31 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://bowfile.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 116d62d860cfeeecb7e759d6449ab1a1
access-control-expose-headers: X-Sc
set-cookie: OAID=08004b5c20394ce1fa6440ff4bff8904; expires=Sun, 27 Apr 2025 22:47:31 GMT; secure; SameSite=None
oaidts=1714258050; expires=Sun, 27 Apr 2025 22:47:31 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

bowfile.com/themes/spirit/assets/frontend/js/cookieconsent-config.js

104.21.37.79

200 OK

2.7 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/js/cookieconsent-config.js
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
HTML document, ASCII text, with very long lines (2799), with no line terminators
Size
2.7 kB (2710 bytes)
Hash
972004a5d72f442a306ddf1b53fdce96
44f681b52bb154d83271d496d6eac7968289ec73
81418b009ff0ee8c7f9b2f8cb4984a4322775cf60e8bb6b6eb33cc8dcca11fd3

HTTP Headers

GET /themes/spirit/assets/frontend/js/cookieconsent-config.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=4182
etag: W/"65e25d61-1056"
last-modified: Fri, 01 Mar 2024 22:57:37 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A7s7Yv5rwDmncVP0Shc4XKmXAiLMqSM46zfPOyqsApnteN7l9N37U9hDxbcGtGpTT61%2BgQ3s7x6pTJrw7KsMGqqaZpNJZ6bsWd0UgoDzy1meAc7bWkUx4GbCS96Kfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb2f8056cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/img/favicon/favicon-16x16.png

104.21.37.79

200 OK

849 B

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/img/favicon/favicon-16x16.png
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
849 B (849 bytes)
Hash
9e2e5a1b5f9de6f65f38c2013f54d6e3
7e3697b34eae30aff6f1fc47d24fda12cb23f1ef
c46d0b0563620af19dd7ad1689b965ef9156c26e537ce81723f828a8b4845b89

HTTP Headers

GET /themes/spirit/assets/frontend/img/favicon/favicon-16x16.png HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da; _ga_G45GX6EFX2=GS1.1.1714258050.1.0.1714258050.0.0.0; _ga=GA1.1.2137101906.1714258051
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:30 GMT
content-type: image/png
content-length: 849
last-modified: Sat, 22 May 2021 00:41:54 GMT
etag: "60a85352-351"
cache-control: public, max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V41aUEUl2g1PEf630t%2FlX9wN0%2BEpxq35Fcq%2F43AMZh5mGA6V%2FZ%2FJVM%2BHffYCattoy1ifSAVpBhMofc5xxnPyL%2BTSkwyq3kMti%2BUT0UNHbSYCBoHbrTIp6Lsr4bz%2FFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b25ad14bfa56cb-OSL
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png

104.21.37.79

200 OK

36 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
36 kB (35486 bytes)
Hash
ff48e5c8d20ea41f385c3bed9208c520
e21f83f2c37160693d6f6abc0cb3c28d781b51c9
0654a8a641a7c7c3bd80abf11fd69edf42d98a69880c707681e5963efbabe072

HTTP Headers

GET /themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da; _ga_G45GX6EFX2=GS1.1.1714258050.1.0.1714258050.0.0.0; _ga=GA1.1.2137101906.1714258051
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:30 GMT
content-type: image/png
content-length: 35486
last-modified: Sat, 22 May 2021 00:41:55 GMT
etag: "60a85353-8a9e"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 829
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uTtalLjmQ4xFFTeGttiMO8FvBeMYIYSYUH7KDOF9JWF8ljJGo6OALtsQCuGY7swHXXU1wreVdainGFq6KFG0xMPk1Uz0HezjUWgl1SSG55ZKsBbVhPsFhZRn2KVW4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b25ad14bf856cb-OSL
alt-svc: h3=":443"; ma=86400

bowfile.com/a1mf

104.21.37.79

200 OK

20 kB

URL User Request GET HTTP/2
bowfile.com/a1mf
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type

Size
20 kB (19662 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /a1mf HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da; expires=Mon, 27-May-2024 22:47:29 GMT; Max-Age=2592000; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, no-cache, public
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uZvJcKcEXxrZFRc%2BJf1xtQcQ3c%2FsGBjTqzpQdL12jytYR5WJsnRUbUX5YToaW7eqjLpWg8S3HD6Ayr8JGb3jVcXJ9w%2BgJ9MVI%2BDDH5CwnZlxohBQca3bl535EeOJ3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25ac89ea4569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/icon?family=Material+Icons

142.250.74.106

200 OK

565 B

URL GET HTTP/2
fonts.googleapis.com/icon?family=Material+Icons
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (588), with no line terminators
Size
565 B (565 bytes)
Hash
959a533a3dc02649e0cc3f8f67d942af
34db49ff64aed8b51beaba5b9928ad504a4df335
24864ed3ee6fab66640980d4c24640e579e5583764a8ee8c4f09decf27977247

HTTP Headers

GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 27 Apr 2024 22:47:29 GMT
date: Sat, 27 Apr 2024 22:47:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bowfile.com/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js

104.21.37.79

200 OK

87 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
JavaScript source, ASCII text, with very long lines (32030), with CRLF line terminators
Size
87 kB (86713 bytes)
Hash
5b5a269bd363e0886c17d855c2aab241
042dd055cd289215835a58507c9531f808e1648a
1cf30e59d21d4ae560af7143f5913efcc8222bcaa4fcc7508eb802b5faa9e94e

HTTP Headers

GET /themes/spirit/assets/frontend/js/jquery-3.1.1.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-152b9"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hs1OJKo4KUKBlBL8ONa7emBdGIEHPAlPxkoeji2kCWnyFk4zIpYNns787m4mEeA2Y4hSuufqkgoqA2SNKeg2lWVqoMLJoBpfNHahwByxxb8gTMhENjGPdE1AR%2FuBzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb2f8156cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/css/font-awesome.min.css

104.21.37.79

200 OK

59 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/css/font-awesome.min.css
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
ASCII text, with very long lines (58929), with CRLF line terminators
Size
59 kB (59119 bytes)
Hash
879812fc22af75aa3ae7b5666ca4f4b8
df27469a952b7ee36cc03db471c6198f577186a8
c5d7f0d9e646698b20734ce6dcc2c0a8ecf6ebe27b4b7625bfcf42c4416fb7ed

HTTP Headers

GET /themes/spirit/assets/frontend/css/font-awesome.min.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: text/css
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
etag: W/"5f8bebbe-e6ef"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OeyxBZ3KNR9DqHI%2FwXhF6mFQpU5%2BxjOYpzuNg2DrfgHhNO36ignm%2FOZo7a9WRno9ScW6cMbDI8gInOBGRpJsp57HVBz6Zz2%2F1%2BX4J5XUs%2Bv6nqfakIgpYTup4L26IA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb1f7456cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/css/custom.css

104.21.37.79

200 OK

6.7 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/css/custom.css
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
ASCII text, with very long lines (6717), with no line terminators
Size
6.7 kB (6717 bytes)
Hash
a47c37c06e3dfcd6d6c81e581d724c3e
cca10fe5774ed40d9d4fcbe021f578137222531e
2ba990faaad8198719efac063a6ec699b548708b555a3ef7821fd6899a8556ce

HTTP Headers

GET /themes/spirit/assets/frontend/css/custom.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=8936
etag: W/"601c20c0-22e8"
last-modified: Thu, 04 Feb 2021 16:28:48 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GFm0A56rtZZV7sRdzdpacRoZnd%2BBqzhc4xooJMhLK%2FuyI4l9gxIoVpX2Lsd6tR9FOKeF5U49wv2z3QXirS%2B5CpYu4fK83vdYKD4LZxjEi8nPqN75sA7h2zbEMUWcvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb1f7556cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fundingchoicesmessages.google.com/i/pub-1455201204252520?ers=1

216.58.211.14

200 OK

186 kB

URL GET HTTP/2
fundingchoicesmessages.google.com/i/pub-1455201204252520?ers=1
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint01:16:A3:AE:CA:C9:AC:ED:3A:C9:AA:75:BE:C2:51:EF:65:CE:23:E1
ValidityMon, 08 Apr 2024 06:34:56 GMT - Mon, 01 Jul 2024 06:34:55 GMT

File type
JavaScript source, ASCII text, with very long lines (1933)
Size
186 kB (185484 bytes)
Hash
3c67fb227452c00769f536a5f2a768cf
5d4eb820fb99b316579d06ca6317a1c87ede20a0
23a475f4961219b6e5c29bb7ac633ea744fb58787c0f7522ca159937dcd4922a

HTTP Headers

GET /i/pub-1455201204252520?ers=1 HTTP/1.1
Host: fundingchoicesmessages.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
timing-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 27 Apr 2024 22:47:30 GMT
cross-origin-opener-policy: same-origin
content-security-policy: script-src 'nonce-Mkh30hCKpZy91bI1r3YW4w' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorServingWebSwitchboardHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
reporting-endpoints: default="/_/ContributorServingWebSwitchboardHttp/web-reports?context=eJzjitDikmLw1ZBiOO90h-k6ENcyPGNqBWIDjedMFkAs8fUlkxYQxzyfzpoCxE7pM1hDgNinfgZrHBC33jzHOh2ITy44z3oRiJP_nWctBWIhHo6mxm0b2QRebOrvZAYA-wEqlw"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bowfile.com/themes/spirit/assets/frontend/js/typed.min.js

104.21.37.79

200 OK

3.9 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/js/typed.min.js
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
JavaScript source, ASCII text, with very long lines (4016), with no line terminators
Size
3.9 kB (3949 bytes)
Hash
774397f3c0e528c9236aa2aa52e7f00d
8827256327d046805954084e9b5002247e073ceb
d2b259a9bb83973272b1e93c242646451df16bc3860ac6c8f3689df92ad98140

HTTP Headers

GET /themes/spirit/assets/frontend/js/typed.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-f6d"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xeEvhZU7Io%2BqiSvC%2FwPZUX%2F4yMmcMxKfOoEXe8UZvNwW83rDC%2BCtQNLI0MCc7LReNM4hPVfB%2BV%2BjzUSR9MAAQQqg5OyhilZw7xtsx8cn%2FbT7PdbVuGr%2BuYlnx0JlfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb2f8a56cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bowfile.com/themes/spirit/assets/frontend/js/countdown.min.js

104.21.37.79

200 OK

5.4 kB

URL GET HTTP/3
bowfile.com/themes/spirit/assets/frontend/js/countdown.min.js
IP
104.21.37.79:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bowfile.com/a1mf
Certificate
IssuerGoogle Trust Services LLC
Subjectbowfile.com
Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB
ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT

File type
JavaScript source, ASCII text, with very long lines (5507), with no line terminators
Size
5.4 kB (5360 bytes)
Hash
0a9988ecd74ad96d83a8e257f5f5e0f1
2f85fdf86f65c0a2a477ef02af754827b7a5a069
c292f5ba20b0ba73fcd40289791f0e0be99c49d83fc5226881da97ad78e9c061

HTTP Headers

GET /themes/spirit/assets/frontend/js/countdown.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/a1mf
Cookie: filehosting=871c6b9f473f27e6849653a3e0acf9da
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 27 Apr 2024 22:47:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-14f0"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 427
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OZZYYsspx%2BiqN33fxJC6n8HSrzBGdHNEQzFQxmsVUQrB9edTOlzCZf9QnBX0PvFAB7K37v%2FYOezIujTuDArkBqu3rYzQc2RjCjfShI5y2nQusGypnhYO2367fwDLPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b25acb3f9156cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (30)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL